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(57) ABSTRACT 

Adelivery system for managing security keys uses three key 
pairs to establish, register, move and revoke rights in a 
device to view protected information. The first and second 
key pairs cooperate to establish a secure certificate contain- 
ing a device public and private key, and the pairs of keys are 
manipulated to install the appropriate keys in the device and 
the associated authentication server without ever exposing 
the keys. Thereafter, in the event of a need to authorize a new 
device to view content associated with a prior, authorized 
device, the key pairs are used to revoke the rights of an old 
device and establish identical viewing rights in the new 
device. 
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CERTIFICATE HANDLING FOR DIGITAL generate the key pairs and to send the private keys to the 

RIGHTS MANAGEMENT SYSTEM factory during production. This has the obvious disadvan- 

tage that the private keys are, at some point, known to the 
RELATED APPLICATION factory. 

This application is a continuation-in-part of U.S. patent 5 a PP roach * for *c factory to be allowed to 

application Sen No. 09/034,720, filed Mar. 4, 1998, entitled generate the key pairs, in which case the public keys wiU be 

Secure Content Distribution System, and incorporates by provided to the owner of the information for use in subse- 

reference U.S. patent application Ser. No. 09/168,080 quent downloads of protected irrfonnation. This, too, suffers 

entitled Digital Rights Management System, filed on even ? om the P">M«n that the key pairs are both available at the 

date herewith and assigned to the same assignee as the 10 factory, and therefore unacceptably subject to theft or other 

present invention. abuse. 

Beyond just the manufacturing issues, additional issues 

I'l ELD OK THE INVENTION exist with secure systems when the reader requires service, 

is lost, or is otherwise replaced. In most instances, the reader 
The present invention relates to generation, management is ^ significant amounts of purchascd comentj ^ 

and replacement ol encryption keys, and more particularly that me ^ ^ waflt tQ haye traDsfcrrcd to me new readcr 
relates to methods for generation, management and replace- ^ Mt& QT 0{hflI digital rights that existed in information 
ment of encryption keys m connection with the distribution maintained 0D the ior reader> With conventioDal 
and management of digital rights in encrypted text or other techniques> lnis again requires that the kev pair be available 

a a * 20 during the manufacturing process; this is, in general, an 

BACKG ROUND OF. THE INVENTION unacceptable security risk. 

The ubiquitous nature of the Internet in the business SUMMARY OF THE INVENTION 

community, and the increasing penetration of the Internet The present invention overcomes many of the limitations 
into homes, has generated a new era in ihe distribution of 25 of the prior art and, more particularly, provides a secure 

information to interested recipients. The ease with which system and method for generating and distributing encryp- 

volumes of information can be disseminated around the tion keys both during manufacturing and thereafter, and for 

world over the Internet has been demonstrated and docu- transferring existing digital rights in data from a first device 

ntented. 3Q to a replacement or other device. 

While this ease of distribution is valuable and desirable, In particular, the system and method for generating key 
in many instances, the information — whether text, data, pairs during the manufacturing process makes it possible to 
code, graphics or some other form— is valuable and its generate the key pairs without both keys in the key pair 
owners prefer that this information not be distributed freely. existing in an insecure environment at any time. More 
In such circumstances, the need for a suitable form of 35 specifically, the present invention permits distributed gen- 
protection for t, c information becomes critical. A conven- eration of the public and private keys, with the factory 
tional approach has been the use of encryption, typically installing secure versions of the key pair in the reading 
using a combiii inn of a public key and a private key. Such device. The reading device, or reader, is then used to 
techniques are .veil known and offer significant security transport the public key in a secure way to an authentication 
when used prop-; I y. ^ server. 

One difficul.y with conventional applications of such To implement the present invention, the factory public 
techniques, however, is that the protected information is, at key must be registered with the authentication server, and 
some point, clecrypted for viewing or other use in an the authentication server public key must be registered with 
insecure environment. At that point, the information is able the factory server or other equipment. The factory equip- 
to be disseniinai.d contrary to the wishes of the owner of the 45 ment automatically generates an encrypted form of the 
information— a ■ : u ndesirable result. public/private key pair and further generates an appropriate, 

U.S. patent ."plication Ser. No. 09/034,720 describes a unique indicia indicative of the associated device. This 

secure reader 1 r such information, typically though not indicia can also be read directly from the device if the device 

necessarily n ■ «c with text, in which a unique private key has an unique indicia built into the hardware, such as a 

is associated > i each reader and a public key associated 50 "silicon serial number" available in many CPU and periph- 

with that reat' ^ available to the owner of the protected eral integrated circuits. The indicia and the new public key 

information. Tl; owner of the informal ion encrypts the of the device is then encrypted with the public key of the 

information wit 1 il,e public key, and the information is authentication server, and appends to the indicia the authen- 

there after di«\. loaded 10 the associated reader. The reader tication server public key. The indicia and appended public 

then decrypts e information with ihc interna lly-rnaintained 55 key are then hashed and signed with the factory private key 

private key. >\. wing the user to view the decrypted infor- to generate a device certificate, which is sent to the elec- 

mation. tronic reader. 

While thi-; -i "">roach offers many advantages, it is impor- The electronic reader receives the device certificate, 

tant that the - .ic and private sccuriiy keys not be readily authenticates it and, if authentic, compares a portion of the 

available toe r du-ing the manufacturing process to avoid 60 indicia to ensure the certificate is truly intended for the 

potential a! 1 >"c ! i as theft or hacking. While there are recipient reader. If so, the device private key is installed as 

numerous te ucs for attempting to maintain security for well as the authentication server public key; the remainder 

encryption 1- :,i a manufacturing cn\ iionmcnt, most of ihe indicia and the encrypted device public key are stored 

currently av a v techniques involve both public and pri- and the reader is ready to ship. 

vale keys (> ., ,e;, pairs) being jointly available at some 65 Once the reader is received by the user, the user registers 

point durint' < na-uifaciuriiig process. One approach is for the reader with an appropriate entity having certificate 

a remote m (f<>r example, the information owner) to authority such as the authentication server. This is accom- 
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plished by the device uploading the encrypted indicia and 
encrypted device public key, either directly or through 
another computer connected to the Internet. Once uploaded, 
the authentication server decrypts the device public key and 
authentic:! ics the package using the factory public key. If 
authentic, it registers the device public key in the database. 
Additional user-specific information is typically encoded by 
the authentication server to generate a user certificate, which 
is encrypted with the device public key and signed by the 
private key of the certificate authority. The User Certificate 
contains a tliifcront public/private key pair that will be used 
for decrypting content. The public key is registered in the 
authentic:! I inn server database, and the private key is put into 
a secure archive. The sequence number of the certificate is 
set to a low number. The user certificate is then provided to 
and install id hy the reader. The user certificate is then 15 
decrypted and ai.ihenticaled with the device private key and 
the autheniicaii ut server public key both installed at the 
factory, and the result of the authentication process is 
provided tc die .niihentication server. If successful, the user 
certificate is tv •v associated with the 
reader and die process completes. 

If at snue later time the electronic reader needs to be 
serviced or repriced for any reason, the user initiates a 
certificate movi i ient which causes the authentication server 
to start a ivv.i--- , i<in process. The revocation process gener- 



FIG. 6 shows in flow diagram form the details of the 
revocation process included in the overall process of FIG. 5. 

DETAILED DESCRIPTION OF THE 
INVENTION 
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By way of example only, the invention described herein- 
after may be used with the secure content distribution 
system shown and described in U.S. patent application Ser. 
No. 09/034,720, entitled Secure Content Distribution 
System, filed Mar. 4, 1998, and U.S. patent application Ser. 
No. 09/168,000, entitled Digital Rights Management 
System, filed on even date herewith both of which are 
assigned to the same assignee as the present application. 

Referring first to FIG. 1, a distribution system 10 in 
accordance with the present invention can be better appre- 
ciated. A publisher server 100 contains thereon one or more 
files of protected information 105 such as the text of books, 

^ databases, code, graphics, or other information considered 

speTitic"electronic 20 valuable Dv me owner. The files 105 are typically maintained 
in an unencrypted form on the publisher server 100, 
although in some embodiments the files of content may be 
maintained in encrypted form. In other embodiments the 
publisher server 100 may include an encryption process for 
securing content files before such files are transmitted in the 
manner described hereinafter. Although it is to be under- 
stood that the certificate process described herein may be 
used with virtually any type of information, for purposes of 
example and simplification in the aid of understanding, the 
present invention will be described in the context of a text 
distribution system. 

A user PC 110, typically configured with Internet access 
and suitable front-end software 112 such as a Web browser 
(for example, NETSCAPE™ or MICROSOFT 
w user certificate using die old public and 35 EXPLORER™, communicates with an electronic reader 115 
is done by looking up the user's public key as well as a retailer server 120. As described in greater detail 

- . and retrieving the private key from the hereinafter, the reader 115 is typically identified by aunique 
.i.f n looks up the sequence number of the indicia such as a serial number 117 and in a typical embodi- 
d increases the value. The new sequence m ent also includes a private encryption key 119 which may 

"n die customer ceriiiic ite. The new user 40 be uniquely associated with either a specific reader or a 

* - nt to and installed by the second device, specific customer. In addition to the browser 112, the user 

* l .nd device sends a ccnl'n mation to the PC typically has installed application software such as a 
. r. Tins permits the user to continue to Java applet or a helper application 125 which cooperates 

- lie had with the first unit, including with a browser by querying the reader 115 to extract the 
'g or otherwise using die protected infor- 4S reader serial number or other customer ID 117. The PC 110 



certificate. The certificate js sent to the first 
t ' s decrypted and authenticated. The device 
; ' I he authentication server or other appro- 
i'ii .itiihorily with a revocation acknowledge, 
• ■•! ! ; nn server authenticates the response. If 
', ■ revocation is recorded as successful and 
r no longer authorized to view ihe protected 

iti. iiion server or other certificating authority 
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* issible way. 
'inmary of the present invent ion may be 
f'um lite following tVtaile;! I description 

. i -en together with the attached l*'igures. 
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may be rendered unnecessary in some embodiments by 
including in the reader 115 browser software and the ability 
to access the Internet. Alternatively, for some types of 
protected information, the functionality of the reader may be 
50 incorporated into a secure portion of a more generic device 
such as a PC. 

The customer then browses a retailer's server 120 (for 
example, Amazon.com) and identifies selected books or text 
that the user wishes to purchase in electronic form. Once the 

55 customer begins the purchase transaction for the identified 
books (which typically includes providing ISBN numbers or 
other sufficient information to uniquely identify the book), 
the applet or helper application 125 provides the customer or 
reader specific indicia 117 to the retailer's server. 

60 Alternatively, this information can be entered manually, or 
could be stored as a cookie or on the server 120. Still further, 
the helper application 125 could be implemented as a 
plug-in, although plug-ins tend to be browser-specific and 
more complicated as a result. Regardless of the specific 

65 implementation, the retailer's server 120 is supplied with 
customer-specific indicia which permits subsequent authen- 
tication of the purchase and verification of the purchaser. In 
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v \ ihe IP address of the user's PC may 
■ ' io ihc retailer server as part of the trans- 
•\: m. the user supplies appropriate payment 
Inch may be, for example, a credit card 
it hiicrncl-capablc payment scheme. 

•server 120, which may be any form of 
^'cd server, responds to a purchase request 
i'v executing payment with an associated 

"inn 130 such as a bank or other credit 



by the file 105 be licensed to any intermediate holder; that 
is, neither the retailer server nor the authentication server 
need have any control over or custody of the content, which 
passes solely between the publisher server 100 (or the server 
of any other information owner) and the user PC 110. In a 
presently preferred embodiment, the file 105 is maintained 
in encrypted form, although such encryption may not be 
required for all files 105. Nevertheless, for those files that are 
encrypted, the publisher or other copyright holder can be 
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u addition, ihe ID of the reader and the 10 assured that unauthorized copies will not exist. In some 

" embodiments, it may also be desirable to configure the 

reader 115 to decrypt only a page of text currently being 
displayed, so that the remaining text is maintained in fully 
encrypted form even within the reader 115. 

Referring next to FIG. 2, an exemplary system and 
method for secure generation and installation of a key pair 
is shown in flow diagram form. The "factory equipment" 
portion 700 shown in dotted lines at the left of the diagram 
represents the functions performed by the manufacturing 
equipment; the "electronic reader" portion 705 shown at the 
right in FIG. 2 is performed at the reader level. 

The process of FIG. 2 begins at step 710 with the 
generation of a public/private key pair for the specific 
device, or reader 115. The process then advances to step 715 



mesied publication (e.g., ISBN number) is 
. ' nhentication server 135. In a presently 
i ncnl, the authentication server 135 pro- 
y functions including maintenance of a 
< '!i.cironic IDs, or keys, of the various 
■ -erver 135 maintains a database idcnlify- 
!. 1 fur a given ISBN number, including 
the customer's reader is located. In 
.mihenticalion server 135 authenticates 
1 -se readers by ensuring thai Ihe ID received 
■•u'lhr transaction matches the user main- 
\ihase. luirther, the authentication server 
:'se of all purchases and related accounting 
-..eh of the readers. One advantage of such 



- tsed, the database mainiained by the 
aticallv arrange Lor replacement of the 
a manner described hereinafter. In 
■nine embodiments, the authentication 



lie authentication server 135 typically 
i.er server 100 a continued request for a 
1 senls the electronic version of the book 
it. 



at. if a reader 115 fails or the content 2S where the time/date, factory ID, and device external and 

internal serial numbers are appended to the key pair. At step 
720, a "Reg Ticket" is built that includes the Device Public 
Key, the date/time stamp, and the aforementioned serial 
numbers. That "Reg Ticket" is then encrypted at step 725, 
lea inaiicial transaction with a bank 140 or 30 using the Authentication Server Public Key. The "Reg 

Ticket" is then amended at step 730 by appending to it the 
Authentication Server Public Key. At step 735, the amended 
Reg Ticket is then hashed and signed with the Factory 
Private Key to form a Device Certificate. The Device 
e ir miction is complete bm for supplying 35 Certificate is then sent, at step 740, to the "electronic reader" 
to the customer's reader. In some portion 705, which in part of the reader 115 and the process 
• nor may not wish i< > immediately down- advances to step 745 to await a response from the reader. 

s. the customci may www an immediate When the electronic reader 115 receives the Device 

< v n load is requested, fie pioecss e.ssun- Certificate at step 750, it authenticates the Device Certificate 
' ! a download is retjitLMed. Once a 40 using the Factory Public Key at step 755. If the authentica- 
. ed — which may e< e hours, days, tion fails, a security violation message is set at step 760 and 
-the request is acknowledged by the the process halts. However, if the authentication succeeds, 
"'. At that point, the puKi'sher server the actual serial number is compared with the Device 
w • Med file 105 to ii u user's \ } C .1.10, via Certificate internal serial number at step 765. If the authen- 
! 1 application 125; a web browser may 45 tication fails, an error is set at 770 and the process halts. If, 
.tit some embodiments. 1 he encryption as will more often be the case, the authentication succeeds, 
id for the electronii 10 of 'he particular the reader installs the device private key at step 775. The 
sini; the key or II ■ m -n ly associated reader thereafter installs the authentication server public key 
• dial the enenpu ! fv e m only be at step 780, and at 785 stores the encrypted Reg Ticket for 
■ .'xt on the rentie.-tmi: r.'-der ! 15. tn 50 later uplink to an authentication server, after which the 
y preferred cm* *'n.j fie user s PC device is deemed ready to ship at step 790. At that point the 

• .hat iio clear text process sends a pass/fail status message back to the factory 
>.*: the publisher's equipment, and the processes complete. 

• - -re avoided and Thereafter, the reader 115 is provided to a user, and the 

I . -ime instances, 55 user will at some point desire to acquire protected informa- 

II 1. > -e desirable tion viewable on the reader. At that point the user connects 
l i.k uicrypiion/ to the distribution system described in U.S. patent applica- 
tion Ser. No. 09/034,720 filed Mar. 4, 1998, incorporated 

!25. the user's i'C herein by reference, via the Internet or other appropriate 
. i d reader 115 60 connection, and initiates a registration process on the first 
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any suitable use. Thus, with reference to FIG. 3, the initiation of the 

i\ -n-.l pair, or registration process by the user is shown at step 800. The 

•he fader 115, process is then carried forward in the electronic reader 115 

v > ihe iile to and the authentication server, with each portion shown in 
65 FIG. 3 respectively in dashed boxes 705 and 805. 

1 sfheme of the The process advances in the electronic reader portion 705 

it ?\ presented by ihe reader sending its Reg Ticket to an associated 
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-riiy at slep 810. The Certificate Authority 
iplary embodiment, be the authentication 
ugh it could be implemented in any con- 
purposes of clarity, the certificate authority 
ie assumed to be the authentication server 
( of the Reg Ticket from the reader in step 
i he authentication server authenticates the 
ypts it using the authentication server pri- 
es the Device Public Key. The authentica- 
i step 820, sends to the reader a request for 



performed to determine whether the sequence number por- 
tion of the user certificate is greater than an existing user 
certificate (if any — in new registrations there will not be an 
existing certificate). If the sequence number is not greater, 
the process fails at step 965. 

In most instances, as discussed hereinafter in connection 
with FIGS. 5 and 6, the sequence number will be greater and 
the process will advance to step 965. At that step the reader 
install the User Public Key and Customer information, 



.: information as specified by the certificate um( l uel y associating that reader with a particular user. The 



r appropriate authority. This data can be 
■vjih the authentication server over a Web 
iter replies (or the Web form is submitted) 

the user inputs the necessary dala, after 
tication server H05 wrilies and saves the 

"on at step 830. At ihL> point, slep 835, the 
r,, er creates a new public/private key pair 

'icate. The Public key is recorded in the 
i rver database, and the private key is 
-e archive. The User Certificate contains 
i.t the user, the private user key, and 
r for this user. The Certificate is then 
lie Device Public Key and signed using the 
•riiy Private Key. The User Certificate is 

"ler at step N40. 
r receives the User Certificate at slep 845, 
'ie reader and the pr >l\ ss advances to Step 
-lt Private Key is t..en dcervpkd. aulhen- 

d. Whether the a'i'he ticaiion and instal- 

"-sful or not, the p..kcss adv "ices to step 
<■ j Its are reported In die ainhcntieation 

). The server recedes and stores the 
:uul llie process coirpleles ;tl ste[).s 865 

' !y, with the reader having an installed 

f die attthcniicaiii n server portion of the 
i . . 

' FIGS. -JA— 115. die authentication steps 
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process then completes at step 970. 

At this point, the user is free to acquire protected infor- 
mation and view it in any permissible manner, all as 
described in U.S. patent application Ser. No. 09/034,720, 
15 discussed above. However, at future time a user may lose a 
reader or simply desire to upgrade to a newer model. At that 
time, the typical user is likely to have a substantial invest- 
ment in the digital rights to the protected information, and is 
unlikely to want to incur any significant costs in having to 
reacquire those rights. At the same time, the owner of the 
protected information needs assurances that the rights will 
not be abused, while the operator of the authentication server 
needs a simple method by which rights can be appropriately 
transferred to a new reader. 

These concerns are met by the certificate move process 
shown in FIGS. 5 and 6, which provide for movement of a 
certificate and the associated keys from a first device to a 
second device. In a typical scenario, the user receives a 
second device and desires to transfer his rights from the first 
device to the second device, and initiates the process by 
Unking to the distribution system and more particularly to 
the authentication server, as shown at step 1010 of FIG. 5. 
The authentication server responds at step 1015 by devel- 
oping a revocation certificate to be sent to the first reader, 
wh ich is then sent at step 1020. The first device, if available, 
responds at step 1025 by revoking that reader's User 
Certificate, and sends back confirmation to the authentica- 
tion server. In the event the first reader is lost or stolen, and 
iienii- 40 therefore unavailable, the step 1025 may be held for later 
implementation in the event the reader does attempt to make 
contact at some point. For purposes of clarity, however, it 
will be assumed in this example that both devices are 
available. 

At step 1030, the authentication server receives confir- 
mation of the revocation which occurred at step 1025, and 
at step 1035 the authentication server generates a new User 
Certificate with the old public and private keys, but with a 
hither sequence number. The process then advances to step 
10 ) where the new User Certificate is sent to the second 
dev ee/reader. The new certificate is then installed in the 
sec o i id device at step 1045 and confirmation is returned to 
the server. The server receives the confirmation at step 1050, 
and completes with the second device being fully authorized 
to \ : ,.w any of the titles or other information acquired by the 
' 1 1: the first device. Simply put, the User certificate and 
. iatcd public and private keys has been moved from the 
device to the second device. 

ferring next to FIG. 6, however, details of steps 1015 
•h 1030 shown generally in FIG. 5 — the revocation 
-may be better appreciated. As shown generally in 
.\ the subprocess begins with the user initiating key 
.lent from the first to the second device at step 1010. 
uses, at step 1110, the authentication server to create 
roeess 65 and ; ve a Revocation Token of random numbers. Although 
'■etypied ran m numbers are generally preferred for security 
heck is re a s, non-random numbers or other indicia may be 
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some embodiments. The Revocation Token is 
at step 1105 using the Authentication Server 
.ier which the result is encrypted using the 
\ey at step 1110. The double encrypted result 
t step 1115 with the Authentication Server 
I sent (at step 1120) to the first device as a 
t ficate. 

■ ice, assuming it is available, receives the 
ificale at step 1125, which it attempts to 



1165; but if a match exists, the revocation is deemed a 
success and is recorded in a database. At that point the step 
can advance to generating a new user certificate, as shown 
at step 1035 in FIG. 5. 

It can thus be appreciated that an effective method for 
secure generation of public and private keys has been 
shown, together with a method for transferring those keys 
and the associated rights. Having fully described a preferred 
embodiment of the invention and various alternatives, those 
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step 1130. If the authentication fails, the 30 skilled in the art will recognize, given the teachings herein, 

that numerous alternatives and equivalents exist which do 
not depart from the invention. It is therefore intended that 
the invention not be limited by the foregoing description, but 
only by the appended claims. 
We claim: 

1. A method for secure distribution of a public and private 
key pair during an initial installation process, comprising 

establishing a first key pair comprising public and private 

keys, 

associating the first key pair with a first process portion, 
establishing a second key pair comprising public and 
private keys, 

associating the second key pair with a second process 
portion, 

registering the public key of the first key pair with the 

second process portion, 
registering the public key of the second key pair with the 

first process portion, 
generating a third key pair comprising public and private 
keys, the third key pair associated with a device for 
reviewing protected information, 
generating a first certificate based at least in part on the 
public key of the third key pair and encrypted with at 
le;ist the public key of the second key pair and the 
private key of the first key pair 
providing the first certificate to the device during the 
initial installation process. 

2. A method for secure distribution of a public and private 
key pair during an initial installation process, comprising 

est thlishing a first key pair comprising public and private 
keys, 

associating the first key pair with a first process portion, 
cm Wishing a second key pair comprising public and 
l . ivaie keys, 

associating the second key pair with a second process 

p r tion, 

regi lering the public key of the first key pair with the 

s eoml process portion, 
reu ucring the public key of the second key pair with the 

irst process portion, 
get crating a third key pair comprising public and private 
'-eys, the, third key pair associated with a device for 
r viewing protected information, 
get rating a first certificate based on indicia including the 
ib lie key of the third key pair and encrypted with at 
. ->t the public key of the second key pair and the 
p ivaie key of the first key pair 
pru>- 'Ing the first certificate to the device, 
deer" ting, in the device, the first certificate using the 

prolic key of the first key pair, 
confirming that the indicia is correct, 
installing the private key of the third key pair in the 
('• vice, and 



at step 1135. However, if successful, the 
es to step 1140 where the Revocation Token 
'om the Revocation ( ,'et liiicalc using the 
'sey. A revocation acknowledge token is then 
enticaiion Server at step 1145. 
ition server receives ihe acknowledge token 
•-ing the Authentication Server Private Key, 
e result to the saved to the authentication 
- em the first reader is lost or stolen, and 
fable, ihe step 1025 may he held for later 
n ihe event the reader (iocs allempt to make 
point. For purposes of clarity, however, it 
td in this example that both devices are 

t, the authentication server receives con fir- 
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autliL mica I ton server urn. rales a new User 
■lie old public ami p iwiie keys, but with a 
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viththe second devic Vii.-- fiil'v aulhori/.cd 
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device. Simply put. t! e User certificate and 
e and private keys has h en moved from the 
e se '<md device. 
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' i.g ilie public key of the second key pair in the 
» ice d.iring ihe initial installation process, 
methnd tor transferring a secure key from a first 
'<> a second device comprising 
ig ii r -vocation certificate to the first device, 
1 int.-, eoniirmaiion of revocation hack from the first 
■'c, 

ii' ■ i pair of pre-existing public and private secu- 
iur !he first device, 

i a pre-existing user certificate sequence 'num- 
i ic firs! device; and 

i. a usee certificate based mi [he p:iir of pre- 
' ing ublu 1 and private keys wiih i 'i teller sequence 
tier .[? he p r e -existing sequence number, 
'tcii ' fir rt/nkirg rights in a device to view 
co "t \>m /rising 
' ir.- ■ > ■! i-rsi server a first indici.i, 

si n.essage by cncryp'.iiiLi the first indicia 
' •> "vile key associated with the first server, 

mid menage by encrvpting the first message 
.i >lic Ley associated with the device, 

* vo«..iii»in cerlilicaie by signing ihe second 
1 : '!' 'lie private key associated with the first 2 5 



'iie rev'fx'atinn ec ridicule tn the device, 
In t'v device, ihe iew i<<>n certificate, 

fii.'ccssl d ;> T :t l lt j'm:, revoking the 

. . vi' e; 

- ■' e J ^ ice io j he lirsi s< !, ver with a revo- 

■''.■('■ * token, 
■ revocation acknem Scdre If'ken in the 
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5. A method for secure distribution of a public and private 
key pair comprising 

establishing a first key pair comprising public and private 

keys, 

associating the first key pair with a first process portion, 
establishing a second key pair comprising public and 
private keys, 

associating the second key pair with a second process 

portion, 

registering I lie public key of the first key pair with the 

second process portion, 
registering die public key of the second key pair with the 

first process portion, 
gene r;i ting a third key pair comprising public and private 

keys, the third key pair associated with a device for 

reviewing protected information, 
generating a first certificate based at least in part on the 

public key of the third key pair and encrypted with at 

least the public key of the second key pair and the 

private key of the first key pair 
prov iding i lie first certificate to the device; 
receiving lite first certificate; 

gencr ■iiing a fourth key pair comprising public and private 
k. vs, the fourth key pair associated with a user of the 

device; 

generating a second certificate based at least in part on the 
pi v ate key of the fourth key pair and encrypted with at 
lea.-t the public key of the third key pair and the private 
key of tiie second key pair; 

providing ihe second certificate to the device. 
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